Formal Verification
Morpho is known for its industry-leading security practices and follows a multi-faceted approach to security.
Morpho security practices include formal verification, mutation tests, fuzzing, unit testing, and peer reviews that can be found within respective Github repositories. External measures include professional security reviews, contests, and pre/post-deployment bounties.
A whole article was dedicated to the Morpho Security Framework.
The full list of formal verifications is available below.
| Formally Proven | Scope | Date | Tool Used |
|---|---|---|---|
| Morpho V1 - Pre-liquidation | core logic | December 2024 | Certora |
| Morpho V1 - Universal rewards distributor | Merkle tree and claim function | April 2024 | Certora & custom checker |
| Morpho V1 - Vaults V1.0 | core logic | March 2024 | Certora |
| Morpho V1 | core logic | December 2023 | Certora & Halmos |
| Morpho token | authorization system | August 2022 | Certora |
| Morpho token (old) | ERC20 and delegation logic | December 2024 | Certora |
| Morpho utils | math functions | December 2022 | Certora |